Fix WordPress.Security phpcs report in Check model (#8473)

Automattic · Mar 26, 2024 · a8068cf · a8068cf
1 parent 0c4b4ca
commit a8068cf
Show file tree

Hide file tree

Showing 2 changed files with 9 additions and 0 deletions.
diff --git a/changelog/fix-8470-phpcs-report b/changelog/fix-8470-phpcs-report
@@ -0,0 +1,5 @@
+Significance: patch
+Type: fix
+Comment: Ignore a PHPCS rule in two lines.
+
+
diff --git a/includes/fraud-prevention/models/class-check.php b/includes/fraud-prevention/models/class-check.php
@@ -154,6 +154,8 @@ public static function validate_array( array $array ): bool {
 	 */
 	public static function list( string $operator, array $checks ) {
 		if ( ! in_array( $operator, self::$list_operators, true ) ) {
+			// $operator is a predefined constant, no need to escape.
+			// phpcs:ignore WordPress.Security.EscapeOutput
 			throw new Fraud_Ruleset_Exception( 'Operator for the check is invalid: ' . $operator );
 		}
 		if ( 0 < count(
@@ -183,6 +185,8 @@ function( $check ) {
 	 */
 	public static function check( string $key, string $operator, $value ) {
 		if ( ! in_array( $operator, self::$check_operators, true ) ) {
+			// $operator is a predefined constant, no need to escape.
+			// phpcs:ignore WordPress.Security.EscapeOutput
 			throw new Fraud_Ruleset_Exception( 'Operator for the check is invalid: ' . $operator );
 		}